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(54) Abstract Title 

Internet protocol flow detection 

(57) An IP flow detector (51; 52) is provided which supports differentiated services in an IP network, such as a 
Z'r if • ?u^°^' 'rjT? «'"^«^^''^ent, the detector is arranged to detect a flow type which can be identified 
by T»elds in the basic IPv6 header and an extension header. Likewise a method of detecting such IP flows Is 

if 1 J- V "? '^"""^ availability, then TCP/VDP part information Is used. Lacking the latter, some 
fin ^ indicative of packet management criteria is used. eg. a security parameter 

index of the encapsulatrng security payload header where IP encryption is used. Failing this, flows are 
Identified by source and destination IP addresses. 
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Internet protocol flow detection 

The present Invention relates to a mechanisnn for differentiating between 
internet protocol (IP) packets, namely IP flow detection. In particular, it 
5 relates to a nriethod and apparatus which provide flow detection In packet data 
transmission. 

Such a mechanism is used, for example, In wireless Intemet protocol (IP) 
networks. 

10 

The temi "Intemet" is commonly used to describe an infomriation resource 
from which information can be retrieved from a data processor, such as a 
personal computer (PC). The data processor communicates with the other 
nodes in the network via e.g., a modem hooked to a telecommunication 

15 network. The data processor may be connected to the networ1< also by other 
means like a direct data network connection. This information resource is 
worldwide. The Intemet is made operable by defining certain data 
communication standards and protocols, such as TCP (transfer control 
protocol), UPD (user datagram protocol), and IP (Intemet protocol), which are 

20 used for controlling data transmission between numerous parts of the 
Intemet. The TCP is involved with providing communicating processes 
means to transfer a stream of data reliably. The UDP is involved with 
providing communicating processes means to transfer datagrams reliably. 
The IP is the common ground for communicating between the nodes in the IP 

25 network. The lower part of IP can be modified to suit specific network 
environments while the upper part of IP as well as the TCP and the UDP 
above it remain the same everywhere. This way a global uniform network is 
possible although it has been built on local networks that are based on 
different technologies. The cun-ently used versions of the Intemet protocol 



are IPv4 and IPv6. IPv4 is defined in RFC791 and IPv6 is defined in the Ipv6 
specification dated 8** June 1998. 

Thanks to the growing popularity of open data systems, the Transmission 
Control Protocol/Internet Protocol (TCP/IP) communication protocol has 
become a generally used protocol whereby computers of different sizes and 
brands can communicate with each other. TCP/IP support Is currently 
available for almost any operating system and almost any local networ1< 
environment. The network layer protocol of TCP/IP. the Internet Protocol IP, 
is intended to be routed by gateways, i.e. routers. The routing is conducted 
by means of IP addresses and routing tables. Thanks to the TCP/IP protocol 
suite, the applications running in the hosts connected to the Internet are able 
to communicate even though the hosts were located in different continents or 
even space. 

The rapid evolution of the Intemet services has created a strong need for 
broadband networks with high data rate and Quality of Service (QoS). Video 
broadcasting and other multimedia distribution services are evolving rapidly. 
The users are willing to access these services also in the wireless 
environment. Currently, in the fixed IP network, IP packets are typically sent 
as best effort data traffic. In the case of network congestion, all data streams 
are handled with equal priority which may have a dramatic effect on 
multimedia services. Two main problems exist: firstly the cun-ent wireless 
networks do not provide sufficient QoS mechanism, and secondly, the 
existing wireless networi<s are not capable of serving several simultaneous 
connections with high data rate and QoS requirements. To meet the 
increased customer requirements, new wireless broadband network 
techniques are required. 



The Internet Engineering Task Force (IETF) Is an organisation Involved with 
the development of the architecture, protocols and operation of the Internet. 
lEFT has defined two different QoS concepts: integrated and differentiated 
services, for providing a standard mechanism for supporting real time 
applications in IP networks. Integrated services is based on an abstract flow 
model with reservation protocol (RSVP, RFC2205) and admission control. 
The networt< reserves statically resources for real time connections in each 
network device, and hence is not optimally efficient. Consequently the 
differentiated services concept was developed. This concept is based on the 
use of an IP header for indicating the requested service class (called per-hop 
behaviour) for the packet. As a result, each IP packet cames QoS 
information and no reservations are required. Whilst the IETF suggest the 
use of an IP header for indicating the QoS, the actual packet handling 
mechanisms will not be standardised. 

One mechanism used for differentiating between IP packets is IP flow 
detection. The flow detection concept comprises the monitoring of IP traffic to 
be able to detect packets flowng frequently between two communicating 
processes (IP applications). Such packets establish an IP flow. 

The flow detection entity (called the flow classifier) monitors the IP packets 
and some specific IP header fields in detecting the flows. There are several 
header fields (parameters) which can be used In flow detection. Figures 1(a) 
to (c) present the IPv6, TCP and UDP protocol headers respectively and the 
header fields applicable to flow detection. 

As can be seen from Figure 1(a), the IPv6 header block consists of the 
following elements: 



Version 



IP version of 4 bits (=6) 



4 



10 



15 



Traffic Class 
Flow label 

Payload length 

Next header 

Hop limit 



Source address 



Destination address 



8 bit priority, 

20 bit label for identifying the connection in the 
application layer, 

16 bit integer Indicating the length of the payload, i.e. 
the length of the packet after the header in bytes, 
data of 8 bits determining the header immediately 
following the IPv6 header, 

integer counter of 8 bits which is reduced by one at 
the each device (node) which transmits the packet 
further; the packet is rejected if the value is reduced 
to zero, 

the 128 bit address of the sender of the original 
packet, 

the 128 bit address of the intended recipient. 



The header is followed by the payload block, Le. the actual information to be 
transmitted. 



In this IP version, if a packet is provided with a non-zero IPv6 flow label, then 
20 the flow label in the IPv6 header together with the source address is a flow 
identifier (first flow identification type), and directly distinguishes the different 
IP sessions. The flow label is used by the applications to "mark" the packets 
belonging to their IP flow. However, this flow label is not available in ail IP 
headers (e.g. IPv4). Moreover, if a system does not support it, the flow label 
25 is set to zero. In these instances, fields of an upper layer protocol header can 
be used as flow identifiers instead, to distinguish different IP sessions. For 
example, as is shown in Figure lb. an alternative flow ID can include 
TCP/UDP source and destination port infomnation to distinguish different IP 
sessions together with source address and destination address from the IP 
30 header (second flow identification type). 



The present inventors have realised the need for a method of flow detection 
which provides an Innproved flexibility (for example so its use is not solely 
dependent upon the use of current protocols). 



According to one aspect of the present invention there is provided a method 
for detecting an IP flow in flow label deprived packet data transmission, 
comprising monitoring a set of fields in a lower layer header of the packets to 
detect an IP flow, wherein monitoring the set of fields comprises monitoring 
an source address field; monitoring a destination address field; and 
monitoring a further field Indicative of packet management criteria. A lower 
layer header is generally one from OSI layers 1 to 3 (physical, data link and 
network layers) and may for example be an IP header or an IP extension 
header. This IP flow detection method supports the aforementioned QoS 
concepts for example, when an upper layer header is not available. 
Consequently, it provides effective flow management. 

According to another aspect of the present invention, there is provided a 
method of detecting an IP flow In packet data transmission, comprising 
selecting a set of fields to be monitored to detect an IP flow; and monitoring 
the selected set of fields in a header of the packets to detect an IP flow; 
wherein the set of fields is selected from a first set comprising a flow label 
field and a source address field from a lower layer header of the packets; a 
second set comprising a source address field and a destination address field 
from a lower layer header of the packets and a source port field and a 
destination port field from an upper layer header of the packets; and a third 
set comprising the source address field, destination address field, and a 
further field indicative of packet management criteria (other than the flow label 
field) from the lower layer header of the packets. This IP flow method uses 



different opUons, depending on what headers are available. Again, these 
options provide a flexible method of providing effective flow management. 

Preferably the set of fields are selected in the aforementioned order, as they 
are ranked having consideration to the complexity and load in routing devices. 
That is. the lower the priority the increased complexity and load in the routing 
devices. 

The method may be used for detecting an IP flow encrypted packet data 
transmission. This is one example when not all the headers are accessible, 
and in which the present invention Is particularly useful. In such a case, the 
step of monitoring the further field comprises monitoring a security field, such 
as a security parameter index of the encapsulated security payload header. 

According to a further aspect of the present invention, there is provided the 
use of a set of fields in a lower layer header of data packets as a flow 
identifier, wherein the set of fields comprises source and destination address 
fields and a field indicative of packet management criteria (other than a flow 
label field). 

According to yet another aspect of the present invention, there is provided an 
IP flow detector which Implements any of the methods above. 

Embodiments of the present invention will now be described, by way of 
example, of which: 

Figure 1a illustrates an IPv6 header format; 
Figure lb illustrates a TCP header format; 
Figure 1c Illustrates a UDP header format; 
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Figure 2 illustrates an IPv6 header format when encapsulated security 
payioad (ESP) is used; and 

Figure 3 illustrates a general radio system architecture in which the method 
and apparatus of the present invention may be implemented. 

5 

In the present invention, flow detection is made more flexible by the provision 
of an alternative flow identifier to the first and second types mentioned above, 
which caters for the situation where a flow label and/or port addresses are not 
available, and yet still supports differentiated services. A flow label may not 
10 be available for the following reasons, for example. Firstly, the system may 
be using a protocol which does not define a flow label field (e.g. IPv4). 
Secondly, the system may not support flow labels, despite using a protocol 
which defines a flow label field (e.g. IPv6). In this latter case, the flow label 
value is set to zero^ 

15 

Further, an example of a situation when neither a flow label nor port 
addresses are available, may be when the data packet Is encrypted for 
security reasons. Encryption of IP packets is discussed In the draft on IP 
Encapsulating Security Payioad (ESP) by Stephen Kent and Randall 
20 Atkinson, dated March 1998. Figure 2 of the accompanying drawings 
illustrates an ESP extension header. 

IP encryption utilises Encapsulating Security Payioad (ESP), ESP provides 
means for encrypting the contents of an IP packet. When ESP based 

25 encryption is used (transport-mode ESP), the processing nodes can interpret 
only the basic IP header and the extension headers preceding the ESP 
header. This is because transport-mode encapsulates a transport-layer (e.g., 
UDP, TCP or ICMP) frame inside the ESP. In transport-mode ESP, the ESP 
header follovi^ the end-to-end headers (e.g.. Authentication Header) and 

30 immediately precedes an upper layer (e.g., UDP, TCP, ICMPv6) header. 
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The encrypted data includes both the protected ESP header fields and the 
protected user data, which is either an entire IP packet or an upper-layer 
protocol frame (e.g., TCP or UDP). Thus, the second flow identification type 
5 cannot be used because there is no port information available. If, in addition, 
the flow label is not set. effective flow management cannot be achieved. 

In a preferred embodiment of the present Invention, an altemative flow 
identifier is used which makes use of a source address field, destination 

10 address field of the basic IPv6 header and also a further field which is 
indicative of packet management criteria, and thus provide effective flow 
detection. On their own, the source and destination addresses do not provide 
any differentiation and thus do not provide efficient and effective flow 
management. (Hosts may have several applications mnning, each 

15 application requiring different treatment in the network). In contrast, in the 
present example of the invention, the Security Parameter Index (SPI) value 
from the ESP header Is used for flow identification. This header is indicative 
of packet management criteria. 

20 The SPI value together with the source and destination addresses can be 
used to identify different IP flows. The SPI field is a 32-bit arbitrary value 
which together with the destination IP address and security protocol (here 
ESP) identifies the Security Association for the packet. Figure 2 shows the IP 
packet format when ESP encryption Is used (the IPv6 header fields applicable 

25 to flow detection are highlighted in Figure 1 ). 

When IP encryption Is applied (transport-mode ESP), only the infomiation 
contained in the basic IPv6 header and the extension headers preceding the 
ESP header can be used for flow detection. From the basic header, flow 
30 label, source address and destination address parameters are usable. If flow 
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label values are not used, flow identification granularity can be improved by 
using the SPI value from the ESP header, together with the source and 
destination IP addresses to identify a flow. That is, the infomnation available 
to differentiate IP flows from each other can be increased. 

5 

Thus the solution for detecting flows also for secured IP traffic to provide a 
third flow identification type as follows: 

type 3: source address + destination address +ISP1] 

10 

Instead of using only the source and destination IP addresses to identify the 
flow the packet belongs to, it is proposed to also use the SPI value, if there is 
one available In the extension headers. The flow identification granularity 
depends on the granularity of the respective Security Association that is 

15 identified by the SPI value, the destination IP address and the security 
protocol (ESP). For example, there may exist several Security Associafions 
between two hosts or only one Security Association. If there was only one 
Security Association between the two hosts all the different TCP flows would 
be detected by the proposed algorithm as only one flow because the 

20 identifying information In the packets of these flows would be the same (same 
IP addresses and same SPI value in the ESP header). If however there are 
several Security Associations between these two hosts e.g.. per TCP port 
basis, the proposed flow detection algorithm would detect each TCP flow as a 
separate flow because the packets of each flow would have different 

25 identifying infomnation (same IP addresses, different SPI values in the ESP 
header). 

The function that handles the flow detection Is called the flow classifier. The 
flow classier decides when subsequent IP packets with the same flow 
30 identifying information should be considered as a flow. Usually some 
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measurements are made at this point to ensure that the packets that belong 
to the detected flow will be handled specially. For example, in the case of a 
wireless media, the flow could be bound to a radio connecHon. 

The flow classifier decides also when the flow should be terminated. The flow 
will be terminated when no packets with the same flow identifying information 
are detected within a reasonable time. At this point the resources will be 
freed that were reserved for the flow when it was detected. For example, in 
the case of a wireless media, the radio connection would be freed that was 
reserved for the packets that belonged to the temiinated flow. 

Flow classification works so that the IP traffic and specific header fields are 
monitored in order to detect new flows. In a prefen-ed embodiment of the 
present invention, the classifier specifies a number of different flow types 
which can be used, depending on the IP and transport protocol header fields. 
For example, the following four different flow types can be specified: 

1 . Flows identified by flow labels (type 1 ) 

2. Flows identified by TCP/UDP port numbers (type 2) 

3. Flows identified by the source and destination IP addresses + the security 
parameter index (type 3) 

4. Flows Identified by the source and destination IP addresses (type 4) 

The first option can be applied if the applications are able to use the IPv6 flow 
label to mark the different IP sessions. If such advanced applications are not 
available, and if TCP/UDP port infomnation is available, flow type 2 is 
selected. In case IP encryption is used, the second option cannot be applied 
since the port information is encrypted. In such a case, security parameter 
index (SPI) is used with source and destination addresses to identify possible 
flows. If no TCP/UDP port information, flow labels or SPI parameters are 
available, the only option is to look just for the source and destination IP 
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addresses and separate flows between hosts (the first two options separate 
flows in the granularity of communicating processes). 

Each flow type specifies the set of fields from the IP packet header that are 
5 used to Identify a flow. The set of the header fields identifying a particular flow 
is called the flow identifier. Depending on the flow type, the flow identifiers 
contain the following fields: 

• Type 1 : source address + fiow label 

• Type 2: source address + destination address + protocol (next header) + 
10 source port + destination port 

• Type 3: source address + destination address + security parameter index 
(SPI) 

• Type 4: source address + destination address 

15 In this embodiment, the flow types have been prioritised in the above order to 
minimise the required load and processing. The first case can be applied 
when the packets have a nonzero IPv6 flow label, distinguishing directly the 
different IP sessions. This uses the least processing. As mentioned above. If 
the flow label Is not available but TCP/UDP port information is available 

20 instead, the second case Is selected. However, this second option requires 
UDP/TCP header processing allowing efficient flow management but at the 
same time Increasing the complexity and load in routing devices. If neither 
flow label nor TCPAJDP port information is available, the flows can be 
identified by the source and destination addresses and the SPI. Since this 

25 SPI value is in an extension header, it again requires an increased load over 
type 1. 

A flow detector can differentiate between these four flow types, and based on 
the flow classification mechanism bind each flow type to a flow. Three 
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different flow classifier mechanisms which may be applied in the present 
system are: 

• X/Y classifier, meaning X packets (with the same flow identifier) in Y 
seconds resulting in a new flow 

• Protocol classifier which simply assigns all TCP packets to flows 

• Port classifier, using transport layer port numbers to decide which flows to 
bind. 

The XA' classifier is the preferred choice.as it is the only one which supports 
flow types 1 and 2. 

Typical flow detection criteria for the XA' classifier are listed in table 1 below. 
The table gives values for X and Y in a function of different amount of flow 
space available (e.g. the flow space may refer to the amount of radio 
connections required in a wireless internet system). Expected performance 
means the portion of packets switched to flows. 

As can be seen, the values are somewhat different In different environments. 
Therefore, It should be possible to change easily the values of X and Y in the 
WFMP implementation. 



13 



Table 1 : X/Y classifier recommendations 

















1K 


Classifier: X = 5/Y = 15 sec. 
Flow deletion delay: 30-120 sec. 
Expected performance: 85% 


Classifier: X = 40 / Y = 40 sec. 
Flow deletion delay: 30-60 sec. 
Expected performance: 79% 


2K 


Classifier: X = 5 / Y = 60 sec. 
Flow deletion delay: 30-120 sec. 
Expected performance: 90% 


Classifier: X = 10 / Y = 45 sec. 
Flow deletion delay: 30-60 sec. 
Expected performance: 89% 


8K 


Classifier: X = 2 /Y = 60 sec. 
Flow deletion delay: 30-120 sec. 
Expected performance: 93% 


Classifier: X = 5 / Y = 60 sec. 
Flow deletion delay: 30-60 sec. 
Expected performance: 92% 


16K 


Classifier: X = 2 / Y = 60 sec. 
Flow deletion delay: 30-120 sec. 
Expected performance: 93% 


Classifier: X = 2 / Y = 60 sec. 
Flow deletion delay: 30-60 sec. 
Expected performance: 95% 


32K 


Classlften X = 2 / Y = 60 sec. 
Flow deletion delay: 30-120 sec. 
Expected performance: 93% 


Classifier X = 2 / Y = 60 sec. 
Flow deletion delay: 30-60 sec. 
Expected performance: 95% 


00 


Classifier: all packets 
Flow deletion delay: oo 
Expected performance: 99% 


Classifier: all packets 
Flow deletion delay: oo 
Expected performance: 98% 



Since the establishment of a TCP connection always contains at least three 
packets used, and since the flow detection should be based on actual data 
5 packets, a minimum value of six for X is considered appropriate (third data 
packet triggering the flow detection). The value for Y could be 30 seconds. 

A flow is deleted after some constant number of seconds of inactivity. When 
flow classifier detects a riew flow, it starts the flow inactivity timer. This timer is 
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re-Started each time a packet belonging to that flow is received. Once the 
timer expires, the flow identifier is removed from the list of monitored packets. 
Finally, the IP flow is released. 

5 One implementation of the internet protocol is in wireless networks. One such 
network is shown in Figure 3 of the accompanying drawings. The broadband 
radio access network 1 (BRAN) is composed of a radio access network 2 
having mobile terminals 4, access points 51. 5 V and an air interface between, 
plus a mobility enhanced IP router 52(M-Router). The BRAN is connected to 
10 the core IP network which comprises the internet backbone 21 and home 
agents 22. 

The radio access network 2 (RAN) implements all the radio dependent 
functionality such as radio resource management, setup and release of 

15 wireless flows, handovers and packet compression. It contains mobile 
terminals and access points. The mobile terminal 4 is the user's 
communication device for accessing wireless Intemet services, and Is the end 
point of the Intemet and radio access network control protocols. The access 
point 51.51' implements all the radio dependent control functionality, such as 

20 radio resource management. It Includes radio resource management and 
radio link control functions. The corresponding networi< elements in GSM are 
the base transceiver stations (BTS/TRX) and base station controller (BSC). 

The M-Router 52 creates the wireless IP sub-network managing one or more 
25 access points. The M-Router handles the mobility and location management 
of the terminals that are registered to the access points 51,51'. The M- 
Router provides IP mobility services, such as DHCP (dynamic host 
configuration protocol). DHCP is used for allocating IP addresses for the 
terminals. The corresponding element to the M-router in the GSM network is 
30 the gateway GPRS support node (GGSN). The access points 51, 51' and the 
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terminals 4 with an IP stack that belong to the same IP sub-network (use the 
same M-ROUTER) create a logical link. 

The core network 3 comprises a home agent 22 which resides in the home 
nehwork of an associated terminal 4 and is accessed through standard IP 
gateways. Typically home agent 22 is implemented as part of the M-Router 
52 of the home network. However, it can also be a separate entity (e.g. PC 
host). The home agent 22 can contain user authentication information and a 
billing database. It resembles the home location register (HLR) in GSM. 

In a preferred entfjodiment the M-router 52 provides IP flow classification. 
The network can assign certain quality of service characteristics for a flow, 
virtiich are required for multimedia service Implementations in IP networks. 
For Instance, a particular flow can be prioritised in the router. In the present 
embodiment, the M-router maintains IP flow QoS characteristics in the air 
interface and pemnits the prioritisation of different IP packet (flows) in the 
radio link. It does this by mapping the detected IP flows into coresponding 
radio flows for transmission over the RAN. These radio flows have 
con-esponding identifiers and QoS characteristics, and are further discussed 
in Finnish patent application number 980191, a copy of which is attached as 
Annex 1 . 

Alternatively, the IP flow classification could be positioned into the access 
point controller or even into each access point. 

Moreover the criteria used for flow classification in the prefen^ed embodiment 
to detect an IP flow is not essential to the invention. If IP flow detection is 
required, then various other criteria can be used. For example, the flow 
classifier can be dynamically configured by changing the value of the 
packets/sec detection criteria parameter. 
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The present invention includes any novel feature or combination of features 
disclosed herein either explicitly or any generalisation thereof in-espective of 
whether or not it relates to the claimed invention or mitigates any or ail of the 
problems addressed. 

In view of the foregoing description it would be evident to a person skilled in 
the art that various modifications may be made within the scope of the 
invention. For example, QoS characteristics (such as priority/real 
time/accuracy) were given as the packet management criteria in the preferred 
embodiment. However, packet management criteria can be based on other 
factors for which the network requires differentiation. 



1. 
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Method supporting the quality of service of data transmission 



The present invention relates to a method as set forth in the preamble 
5 of the appended claim 1 for supporting the quality of service of data 
transmission in wireless communication according to the Internet proto- 
col, a system as set forth iri the preamble of the appended claim 8. and 
a wireless communication device as set forth in the preamble of the ap- 
pended claim 14. 

10 

The International Standardisation Organisation ISO has developed an 
open system interconnection (OSI) model for describing the distribution 
of data transmission in different layers. The layers are, listed from top 
downwards, an application layer, a presentation layer, a session layer, 
15 a transport layer, a network layer, a data link layer, and a physical 
layer. In view of the present specification, the most essential layers are 
the physical layer, the data link layer and the application layer. 

The European Telecommunication Standards Institute ETSI has de- 
20 fined a standard for a wireless local area network (ETS 300 652), 
HIPERLAN Type 1 (high performance radio local area network) to be 
applied e.g. in wireless local area networks of short distances, such as 
local area networks of offices. In a local area network according to this 
standard, several devices may be connected which communicate on 
25 the same data transmission channel using packet data transmission. 
The standard defines the two lowermost layers of said OSI model: the 
physical layer and the data link layer. 

The Conference of European Post and Telephone Administrations 
30 CERT has defined a standard TR 22-05 where the frequency range 
from 5.15 GHz to 5.3 GHz is reserved for data transmission according 
to the HIPERLAN standard. This frequency range is divided into five 
channels, each of which being allotted a band width of ca. 23.5 MHz. 
Figure 1 a shows a reduced example of such a local area network ac- 
35 cording to the HIPERLAN standard. It consists of terminal nodes 101a. 
101b. 101c. 101d. a switching node 102 and a gateway node 103. The 
terminal nodes 101a— 101 d may comnujriica"fe directly with each other, 
or they may communicate via the switching node 102 if there is no di- 
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rect radio communication between the terminal nodes 101a— 101 d due 
to e.g. too long a distance .or obstacles dampening radio signals. Via 
the switching node 102, the terminal nodes 101a— 101 d can also com- 
municate with the gateway node 103 which is coupled to e.g. a wireless 
5 local area network 104 or the Internet network. Thus, the terminal node 
101a— 101 d can be used as an Internet host, if necessary. 

Figure lb shows the structure of a data transfer packet according to the 
HIPERLAN standard. First, there is a header which is transmitted at a 

10 lower bit rate (LBR) than the other blocks and which includes the ad- 
dress information and the length of the packet. This is followed by a 
synchronisation block for synchronising the receiver to the data blocks 

of the packet DB(1), DB(2) DB(m) containing the actual information 

to be transmitted. One packet may contain a maximum of 47 data 

15 blocks. Each packet can be addressed to either one receiver (unicast 
packet) or several receivers (multicast packet). As the third packet type 
the HIPERLAN standard defines an acknowledgement packet (ACK) by 
which the receiver of the packet Informs about the successful receipt of 
the packet so that the sender will know If there is a need to retransmit 

20 the packet. In packets requiring data transmission In real time, it can be 
defined that the receipt of the packet is not acknowledged, because the 
information contained in the packet could be outdated if retransmitted. 
Packets of this kind are, for instance, packets for audio applications. On 
the other hand, for some real-time applications with higher quality de- 

25 mands, such as video applications, it is possible to define limited packet 
acknowledgement, whereby the acknowledgement is transmitted for 
several packets with one message. In packets not requiring real time, it 
Is possible to define the acknowledgement to be sent after the receipt 
of each packet. 

30 

The transmission and receipt take place on the same channel without 
external synchronisation. The channel is listened to by the receiver of 
the transmitting node for a certain time, and if no communication is de- 
tected on this channel within this time, It is assumed that the channel Is 
35 free and transmission Is started. However, if communication is detected 
on this channel, the receiver is synchronised with this transmission. 
After the transmission, a possible acknowledgement message is; waited 
for, and after this, an attempt for. obtaining the channel can be started. 
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However, there may be several nodes waiting for transmission turns, 
whereby it may occur that several terminal devices try to transmit simul- 
taneously. This can be solved e.g. so that the nodes are allotted differ- 
ent priorities, whereby a node with a lower priority will wait a longer time 
5 after the end of a transmission before it starts to transmit, if no com- 
munication is detected on the channel within this time. 

The term "Internet" is commonly used to describe an information re- 
source from which information can be retrieved from a data processor, 

10 such as a personal computer (PC). The data processor communicates 
via a modem with a telecommunication network. This Information re- 
source is distributed world-wide, comprising several storage locations 
which also communicate with the telecommunication network. The In- 
ternet is made, operable by defining certain data communication stan- 

15 dards and protocols, such as TCP (transfer control protocol), UPD 
(user datagram protocol), and IP (Internet protocol), which are used for 
controlling data transmission between numerous parts of the Internet. 
The TCP and the UDP are involved with preventing and correcting data 
transmission errors in the data transmitted in the Internet; the IP is in- 

20 volved with data structure and routing. The currently used versions of 
the Internet protocol are IPv4 and IPv6. 

Thanks to the growing popularity of open data systems, the Transmis- 
sion Control Protocol/Internet Protocol (TCP/IP) communication proto- 

25 col has become a generally used protocol whereby computers of differ- 
ent sizes and brands can communicate with each other. TCP/IP sup- 
port is currently available for almost all operating systems. The network 
layer protocol of TCP/IP. the Internet Protocol IP. is intended to be 
routed by gateways, i.e. routers. The routing is conducted by means' of 

30 IP addresses of four bytes and routing tables. Thanks to the Internet 
protocol, computers using the TCP/IP can transfer messages in the 
routing network even to the other side of the woHd. 

The Internet, which covers well particularly the industrialised countries, 
35 is a huge network of routers using the TCP/IP communication protocol. 
The largest group of users of the Internet, which was originally in sci- 
entific use only, is now firms which buy-their services from commercial 
connection providers. In the Internet, each device has its own individual 
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IP address. In the Internet protocol version IPv4, the IP address con- 
sists of 32 bits, i.e. it is a digit of four-bytes which is divided in two parts: 
an organisation-specific n^etwork address and a network-specific device 
address. For facilitating the processing of addresses, a decimal dot 
notation system has been introduced, in which the addresses are indi- 
cated by digits of 8 bits separated by dots (an octet). One octet is a 
number from 0 to 255. This address mechanism is further divided into 
three different classes (ABC) which make network and device ad- 
dresses of different lengths possible. 



Further, with the growing popularity of the internet, the length of the ad- 
dress blocks in the data packets of Intemet messages is no longer suf- 
ficient in all situations for indicating all the addresses in use. This is one 
reason for developing the Internet protocol version IPv6. In this protocol 
1 5 version, the length of the address blocks is increased to 1 28 bits, which 
means in practice that an individual address can be reserved for all 
devices that are connected with the .Internet network. Figure 2 shows 
the blocks of the data packet in Intemet messages. 

20 The header block consists of the following elements: 

Version IP version of 4 bits (=6) 

Prio. 4 bit priority, 

Flow label 24 bit label for identifying the connection in the 

25 application layer, 

Payload length 16 bit integer indicating the length of the payload, 

i.e. the length of the packet after the header in 

bytes. 

Next header data of 8 bits determining the header 

30 immediately following the IPv6 header, 

Top limit integer counter of 8 bits which is reduced by one 

at the each device (node) which transmits the 
packet further; the packet is rejected if the value 
is reduced to zero, 

35 Source address the 128 bit address of the sender of the original 

packet, 

Destination address the 128 bit address of the intended recipient. 
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The header is followed by the payload block, i.e. the actual information 
to be transmitted. ? 

Physically, the Internet consists of communication network arranged in 
5 a hierarchy, for example local area networks (LAN), regional tele- 
communication networks, and intematlonal telecommunication net- 
works. These communication networks are coupled internally and ex- 
ternally with routers which transmit information from the transmitting 
terminal equipment or from the preceding router in the chain of data 
10 transmission, and route the information to the receiving temninal equip- 
ment or to the next router in the chain of data transmission. 

Figures shows the coupling of the transmitting terminal equipment 
(source host, SH) and the receiving terminal equipment (destination 
15 host, DH) to the Internet via corresponding local area networks LAN 
and routers R. 

Below in this specification, the transmitting terminal equipment and re- 
ceiving terminal equipment will also be called by the common term In- 
20 temet host. The Internet host can be typically used either as the source 
host SH and the destination host DH. 

An Internet host, coupled to the Intemet network via a local area net- 
work LAN, is either provided with a permanently defined Internet ad- 

25 dress or the address is a dynamic address generated by the sen/er of 
the local area network (for example by using a dynamic host configura- 
tion protocol DHCP). In case the Internet host is coupled by a modem 
to a telecommunication network, the telecommunication terminal must 
ask for an Internet address from an Internet service provider to which 

30 the Internet host is registered. This is conducted e.g. according to a 
point-to-point protocol (PPP) formed above the Internet protocol layer. 
In both cases, the information to be transmitted in the Internet is routed 
to the Internet host possibly via several communication networks and 
routers from a remote host by using a determined Internet address. 

35 

The IP defines the transmission of the communication in packets (data- 
grams). The packet data transmission's one reason for the popularity 
of the Internet, because it allows transrnission in bursts which does not 
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require constant on-line connection and makes it possible that several 
Internet hosts are coupled in the same telephone connection. When a 
router receives a packet-containing a destination address, the router 
routes the packet fonvard, if there is free capacity in the buffer memory 
5 of the router and at least one open telephone line. If there is not suffi- 
cient memory space or no open telephone line available at the moment, 
the packet is rejected and the source host or the preceding router must 
try retransmission later. In general, the Internet does not support time- 
critical data transmission, and the method of best effort offered by the 
10 Internet protocol is sufficient. 

In the transmission of packets according to the Internet protocol, the 
packets can be transmitted directly to the receiver only when the net- 
work elements of the addresses of both the host and the destination are 

15 the same. In other cases, the packets are transmitted to a router which 
takes care of transmitting the packets further, either to the next router 
or to the destination, if the recipient is in the network of the router. In 
each router, each packet entering the router is transferred from the 
communication layer according to the OSI model to the network layer, 

20 where the header of the packets is examined, and on the basis of the 
address data therein, a decision Is made where the packet is to be 
transmitted. For transmission, the packets are transferred back to 
packets of the communication layer. Because the Intemet protocol has 
the character of a connectionless protocol, the above-mentioned 

25 operations must be taken for each packet entering the router. If the 
communication layer is fast, for example in accordance with the 
asynchronous transfer mode ATM, the processing of the packets takes 
a significant part of the time used for transmission. Thus, the whole 
transmission capacity of the transfer line cannot be utilised effectively. 

30 For correcting this situation, e.g. Ipsilon Networks has developed a 
coupling solution. In this solution, an attempt is made to detect time- 
consuming data transmission flows and to couple them directly with a 
communication layer. 

35 The coupling solution by Ipsilon Networks consists of switches and 
controllers for controlling their operation. When a continuous communi- 
cation flow is detected by the controlle*^in any protocol communication 
in the Internet, the controller requests tfie transmitter to label the pack- 



ets of said communication flpw with a flow label, i.e. to open a so-called 
virtual channel for this communication flow. If the same finding is made 
by the receiver, also it requests for separation of the communication 
flow onto a separate virtual channel. Subsequently, this controller be- 
tween the transmitter and the receiver may locally control their own 
switch to tum on direct communication between these two virtual chan- • 
nels. Because the presented coupling solution Is based on labelling 
communication flows, it contains for each label a defined time limit after 
which the label is rejected, if there is no longer communication on the 
channel labelled by it. This reduces the number of different labels re- 
quired simultaneously. In this solution, the' coupling is made on the ba- 
sis of communication between three nodes, and the switching request 
is made by the sender and/or the receiver. The coupling reduces pri- 
marily the delay of data transmission in comparison with routing. 

This coupling solution is only intended for accelerating routing of pack- 
ets according to the Intemet protocol, and this coupling solution re- 
quires that three nodes are involved. This solution does not consider 
the quality of service as such. 

Data transmission in packet form improves the degree of capacity utili- 
sation of the communication channel in general, not only for retrieving 
information from the Internet. For example, packet data transmission 
can be used in applications, such as voice calls, vide.o negotiations and 
other communications according to different standards. However, some 
of these applications are time-critical. For example in a real-time voice 
call, the service of best effort offered by the Internet protocol may cause 
•significant delays in the transmission and transfer of the audio signal, 
which affects the understanding of the received audio signal so that e.g. 
speech is almost or totally intelligible. Moreover, the delay (the time 
consumed from the transmission to the receipt of the packet) may vary 
during the transmission of the audio signal, depending on e.g. the load 
of the communication network and variations in transmission errors. 
The same applies also to the transmission of a video signal in real time. 
There may also be situations where the users of Intemet do not want as 
long delays as occur in many cases for. obtaining Information from the 
Internet. 
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The Internet Engineering Task Force (IETF) is an organisation involved 
with the development of Internet architecture and operation in the Inter- 
net. The IETF is currently developing a new protocol which provides an 
Internet host the possibility to request a desired quality of service from 
5 available defined qualities of service (QoS). This protocol is known as 
the resource reservation protocol (RSVP), and it is presented in the 
standard proposition "Resource ReSerVation Protocol (RSVP) - Ver- 
sion 1 Functional Specification" by Braden, R.; Zhang, L.; Berson, S.; 
Herzog. S.; Jamin. S.; RFC 2205. September 1997 (available at 

1 0 http://www.isi.edu/div7/rsvp/pub.html). The Internet host uses the RSVP 
protocol when requesting a certain quality of service QoS from the In- 
ternet network on the basis of the communication flow of the application 
which the Intemet host wishes to receive from a remote host. The 
RSVP protocol -transmits the request through the network by using each 

15 router user by 'the network for transmitting the communication flow to 
the receiving Internet host. In each router, the RSVP protocol tries to 
make a resource reservation for said communication flow. Also, the 
RSVP protocol tries to make a resource reservation for the communi- 
cation flow in the destination and source Intemet host, 

20 

For making a resource reservation in any node, which may be either a 
router or an Internet host, the RSVP protocol communicates with two 
local terminal modules: access confirmation module and protocol mod- 
ule. The access confirmation module deduces whether the node has 

25 sufficient resources for providing the requested quality of sen/Ice. The 
protocol module deduces if the user has access to make a reservation. 
If either checking fails, the RSVP protocol returns an error message to 
the application that formed the request. If both tests are successful, the 
RSVP protocol sets the parameters for classifying the packet and for 

30 scheduling the packet in the Internet source host for achieving the de- 
sired quality of service. The classification of the packet deduces for all 
packets a service quality class, and the scheduling controls the trans- 
mission of the packets for achieving the promised quality of service in 
all communication flows. 

35 

The RSVP protocol operates on top of the Internet protocol both in IPv4 
and IPv6. In particular, the RSVP protocol Is designed to utilise the 
strong points of the routing algorithms of the present Internet. The 



RSVP itself does not conduct routing but it uses routing protocols of 
lower levels to deduce where reservation requests should be trans- 
ferred. Because the routing changes the routes for complying with 
changes in the topology of the Internet network, the RSVP protocol 
5 places its reservations for resources in new routes, if necessary. 

Telecommunication networks and the Internet are two significant world- 
wide communication networks, whereby wireless telecommunication 
terminals are developed for coupling therewith and for their use. For 

10 example, cellular networks make it possible to couple a wireless tele- 
communication terminal to a telecommunication network and offer a 
high quality of service with circuit-switched technology. These cellular 
networks and other mobile communication networks can be utilised 
also for coupling to the Internet network and for utilising multimedia 

15 services. However, the circuit-switched system has the disadvantages 
that the connection from a wireless telecommunication terminal to a 
wireless communication network is turned on during the whole 
connection, which takes up the capacity of the wireless communication 
network and limits the number of simultaneous connections 

20 

In solutions of prior art for wireless packet communications, obtaining a 
quality of service is not supported. Because of this, a development in 
the Intemet community has been started for solutions supporting the 
mobility of Internet host and obtaining quality of service in the Internet 
25 protocol version IPv6. 

In radio links, data is typically transmitted in a channel which is a 
certain frequency range. In one system, several channels can be 
available simultaneously. Further, in full duplex data transmission there 

30 are separate transmitting and receiving channels, whereby for example 
a base station transmits on the transmitting channel to the terminal 
device and the terminal device transmits on the receiving channel to the 
base station. A problem with radio links is that the radio channel is a 
limited resource which limits e.g. the band width and/or number of 

35 channels that can be reserved as well as the data transmission rate 
available for the radio link. The radio channel is liable to disturbances, 
such as distortion of the received signal caused by multi-channel 
propagation which is due to the fact that the same signal is received at 



the destination through different routes at different times. To reduce the 
effect of disturbances, part of the data transmission capacity must be 
used for transmitting error correction data with the packets, and 
achieving a desired error probability rate may require several packet 
5 retransmissions, which reduces the capacity of the radio link. 

In radio links where several data transmission flows are transmitted on 
one channel, packets of these different data transmission flows are 
multiplexed. The transmission order can be affected by arranging 

10 packets of different data transmission flows In an order of priority, 
whereby packets of a flow with higher priority are transmitted more 
often than packets of a flow with lower priority. These include packets 
of a real-time application which are preferably made as short as possi- 
ble. On the other hand, packets of applications with lower priority are 

15 often considerably longer than packets with higher priority. In systems 
of prior art, such a long packet prevents the transmission of other 
packets as long as the transmission of the packet takes. This may 
cause considerable delays also in the transmission of packets with 
higher priority, and reduce the quality of service. 

20 

It is an aim of the present invention to provide a method for flexible de- 
termination of the quality of service In wireless communication in the 
Internet. The method of the invention is primarily characterised in what 
will be presented in the characterising part of the appended claim 1. 

25 The system of the Invention is primarily characterised In what will be 
presented In the characterising part of the appended claim 8. Further, 
the wireless communication device of the present invention is primarily 
characterised in what will be presented In the characterising part of the 
appended claim 14. The invention Is based on the Idea that for setting 

30 up an Internet connection, the required quality of service Is determined 
for the connection, on the basis of which the connection Is attempted to 
make In a wireless communication network vvith parameters complying 
with the set quality of sen/ice. 

35 The present invention gives significant advantages to the solutions of 
prior art. In a wireless connection set up by the method of the invention, 
the quality of service is obtained in a nrrore reliable way. and moreover, 
the whole capacity of the wireless communication network can be util- 



ised more, efficiently, because for some connections it will suffice to 
have a quality of service which takes up less of the capacity of the 
communication network, pn the other hand, fewer retransmissions will 
be required in connections where no high demands are set for the cor- 
5 rectness of the data transmission, e.g. for the transmission of speech or 
video between the Internet network and a wireless telecommunication 
terminal. Thus, more capapity will be left for applications where e.g. the 
correctness of data transmission is important, such as in the transmis- 
sion of data files. Data transmission flows are examined in a centralised 

1 0 manner on the Internet protocol level, and a detected data transmission 
flow is supplemented with the parameters of the quality of service of the 
radio interface. These parameters are obtained advantageously from a 
predetermined data file depending on the radio interface. In this central- 
ised definition of quality of service, only two parties are required, and it 

15 is possible to better examine active data transmission flows and quality 
of service levels defined for them, before setting the quality of service 
for a new data transmission flow. Thus, new connections will not reduce 
the quality of service of existing connections. 
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As another advantage, it can be also mentioned that the packet of one 
data transmission flow does not need to be transmitted as one packet 
but it can be divided into smaller parts which are, according to the in- 
vention, equipped with a label of the radio flow, on the basis of which 
the receiver can distinguish between packets of different flows and their 
parts. Thus, between parts of one long packet, it is possible to transmit 
a packet of a flow requiring higher quality of service. Further, the num- 
ber of retransmissions can be reduced, because errors occur typically 
in bursts, whereby not all parts of a long packet are not necessarily er- 
roneous and these do not need to be retransmitted. 

In the following, the invention will be described in more detail with ref- 
erence to the appended drawings, in which 

Fig. la shows an example of a local area network complying with 
the HIPERLAN standard in a reduced manner. 
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Fig. lb 



illustrates the structure of et^ data transmission packet com- 
plying with the HIPERLAN standard. 



Fig. 2 illustrates the structure of a packet of the Internet protocol 
version IPv6, ' 

Fig. 3 shows the coupling of a transmitting and receiving host via 
the Internet network in a reduced chart, 

Fig. 4 shows the coupling of a wireless Internet host to the Internet 
network in a reduced chart, 

Fig. 5 shows packet data transmission between a wireless com- 
munication device and the Internet network via the GSM 
cellular network, 

Fig. 6 shows an example of generating a radio flow label upon 
detecting a data transmission flow in a wireless communica- 
tion network, and 

Figs. 7a and 7b show examples of packet transmission sequences ac- 
cording to prior art and upon transmission with a radio flow 
label according to the invention. 

In the following, the invention will be described by using the GSM cellu- 
lar network as an example of a wireless communication network and a 
wireless communication device of the GSM system as the wireless In- 
ternet host, but the invention can also be applied in other wireless 
communication networks and wireless telecommunication terminals 
with the option for data transmission in packets. This wireless 
communication device 1 can also consist of a computer, such as a 
portable computer, coupled with a wireless data transmission device, 
such as a radio modem. 

In this specification, data flow refers to the transmission of data packets 
belonging to the same communication/application. Respectively, wire- 
less data flow refers to the transmission of data packets belonging to 
the same communication/apptication. advantageously via the radio 
channel, whereby also the term radio flow-is used. The packets may be 
e.g, packets complying with the Internet protocol or GPRS pacl<ets of 
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the GSM cellular network. The GPRS packet transmission system pro- 
vides the possibility of 14 simultaneous connections in one terminal 
(wireless communication -.clevice) at the data transmission level. At 
present, the GPRS packet transmission offers the possibility of arrang- 
5 ing the packets in four different levels of priority. The block reserved for 
this priority information in the packet can be modified into a block re- 
served for the radio flow label according to this invention. In case there 
is a need to form at least as many radio flows as the number of simul- 
taneous connections, the corresponding number of bits are resen/ed for 
10 the radio flow label. Thus, two additional bits will be needed In addition 
to the priority block. 

Each connection may be connected with one application, but the same 
application may involve also more than one connection. The data 
15 transmission flows of these different connections belonging to the same 
application can be identified by the address and port data of the sender 
and the receiver in the header of the packets. 

Figure 4 is a reduced chart showing the coupling of a wireless Internet 

20 host in the Internet network. The system consists of a wireless com- 
munication device 1, a radio access network 2 and a core networks. 
The radio access network comprises the operations for accomplishing 
data transmission between the wireless communication device 1 and 
the core network 3 as well as for controlling wireless resources, for set- 

25 ting up and down wireless data flows or radio flows, for moving the 
connection from one control station to another (handover), and possibly 
also for compressing packets e.g. according to the IPv6 standard. In 
this example, the functional elements of the radio access network in- 
clude an access point 4, 4' (AP) and an access point controller 5 (APC). 

30 A radio communication is set up between the access point 4 and the 
wireless communication device 1 , for transmitting e.g. signals required 
for setting up the connection and information during the connection, 
such as data packets of an Internet application. The access point con- 
troller 5 controls over one or several access points 4, 4' and connec- 

35 tions set up through them to wireless communication devices 1. The 
radio access network 2 may comprise several access point control- 
lers 5, 5', 5". In the GSM cellular network, the access point 4, '4' is a 
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base station and the access point controller 5. 5'. 5" a base station 
controller. / 

The core network consists of nodes connected by wires in the Internet, 
5 such as routers and wired Internet hosts. 

The core network can be divided into so-called domains. These do- 
mains have a server computer or a corresponding router, by means of 
which the domain can communicate with other domains in the Internet. 

10 The Internet hosts in the domain, in turn, are coupled with the router of 
the domain. Figure 4 shows a core network with two such domains 6, 6' 
which are Intended for serving wireless communication devices 1. 
These domains 6, 6' include mobile domain (MD) routers 7, 7! which 
control the access point controllers 5, 5', 5" coupled with the domain 6, 

15 6'. Mobility Is achieved in Intemet protocol version 6 by supplementing 
the protocol with a data transmission method whereby the domains can 
transmit information from a wireless Internet host that has changed its 
domain. This data transmission method Is called In this specification a 
home agent. In this context, reference Is made to the Intemet protocol 

20 standard version 6 IPv6, where operation of this home agent is de- 
scribed in more detail. The mobile domain router 7, 7' contains the 
functional properties of the dynamic host configuration protocol ver- 
sion 6 DHCPv6 and the monitoring of the mobility of the wireless com- 
munication device 1 between the access point controllers 5, 5', 5" cou- 

25 pled within the mobile domain 6, 6'. It should be mentioned that in some 
domains, there may be one or several conventional routers between 
the mobile domain router 7, 7' and the access point controller 5. 5', 5", 
even though these possible routers are not shown in the appended 
Fig. 4. In the GSM cellular network, where the general packet radio 

30 service GPRS is used, the element corresponding to the mobile domain 
router 7, 7' Is the serving GPRS support node SGSN. The element cor- 
responding to the home agent In said GSM cellular network Is the 
gateway GPRS support node GGSN. 

35 The network architecture used as an example in this specification gives 
an outline on how the quality of service can be defined in band-limited 
radio access networks when coupled wkh the Internet network. This ar- 
chitecture involves two connection Interfaces: the radio interface and 
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the radio access network / core network interface. Thus, the radio inter- 
face is generated for communication between the wireless communica- 
tion device 1 and the access point 4, 4'. In a corresponding manner, the 
radio access network / core network interface consists of the connec- 
5 tion between access point controllers 5, 5', 5" and mobile domain rout- 
ers 7, 7'. 

The user of the wireless communication device 1 can use the Internet 
network e.g. in a way that an application program, such as a browser, 

1 0 designed for this purpose is turned on in the wireless communication 
device 1. In the application program, the user of the wireless communi- 
cation device sets as the destination address the address of a desired 
Internet server or Internet host, for example the address of the Internet 
server of the provider of the service with which the user of the wireless 

15 communication device has made a subscription to using Internet serv- 
ices. As already presented above in this specification, this Internet ad- 
dress can be given as a four-part octet number string or addresses in 
text form can be used, whereby a domain name server converts the 
address from text form into a numerical string according to the Internet 

20 protocol. 

Figure 5 is a chart showing a situation where the wireless communica- 
tion device 1 is coupled to the Internet network via a digital cellular net- 
work by using the general packet radio service GPRS. The wireless 

25 communication device 1 communicates with an access point 4 on any 
channel of the frequency range reserved for the system. In the GSM 
cellular network, this access point 4 is a base transceiver station (BTS) 
of the base station subsystem (BSS). One access point 4 forms the ra- 
dio interface of one cell in the cellular network. The access point 4 op- 

30 erates as a transmitter of information to be transmitted between the 
wireless communication device 1 and the access point controllers. It is 
a central function of the access point controller to control the channels 
in the interface and to transmit the connection from one access point 4 
to another access point 4' in a situation when the wireless communica- 

35 tion device 1 moves from one cell to another. 

Next, data transmission from another- Internet host to the wireless 
communication device 1 will be descriBed. The Internet application of 



the wireJess communication device 1, to which the information is finally 
transferred, transmits the above-mentioned address to define the 
source Internet host. The;data transmission is conducted according to 
the GPRS standard from the mobile station 1 to the GSM cellular net- 
5 work. The GSM cellular network converts the packet message to a 
message complying with the Internet protocol and transmits it to the 
Internet network. The information formed in the application is transmit- 
ted to the wireless communication device 1 according to the Internet 
protocol via the Internet network in a manner known as such by routing 

10 to the GSM cellular network, where the information is converted to 
comply with the packet transmission mechanisms of the cellular net- 
work, in this case into packets of the GPRS network. The information is 
transmitted further via the access point controllers to the access 
point 4 and further to the wireless communication device 1 where the 

15 received message is transferred to the application layer to be proc- 
essed by the application. 

The following is a description on the method according to an advanta- 
geous embodiment of the invention for generating a radio flow label in 

20 communication between the wireless communication device 1 and the 
access point 4, 4\ The application is an Internet application of the 
wireless communication device 1, from which information complying 
with the Internet protocol is transmitted to the Internet network. This 
specification does not contain a more detail description on the forma- 

25 tion of packets between the wireless communication device 1 and the 
mobile communication network, which may vary in different mobile 
communication networks and is prior art known as such by an expert in 
the field. Figure 6 is a schematic diagram of this formation of the radio 
flow label for data transmission between the wireless communication 

30 device 1 and the access point controllers. All data transmission is 
based on packets and is routed according to the Internet protocol. The 
mobile terminal radio flow agent (MRFA), which is implemented advan- 
tageously in the application software of the wireless communication 
device 1, starts to transmit radio flow information packets using a de- 

35 fault flow ID. At the access point 4, an access point radio flow agent 
(ARFA) transmits the flow further to the access point controller 5. At the 
access point controllers, a router matrix-'(RM. not shown) transmits the 
flow to a radio flow manager block (RFM). The access point controller 5 
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detects that this flow is of the kind for which a radio flow label should be 
formed for achieving a certain quality of service (block 601 in Fig. 6). 
The access point controller 5 finds out if there are sufficient resources 
available at the moment to be used for data transmission between the 
5 wireless communication device 1 and the access point 4 in order to 
achieve the desired quality of service for said flow FID (block 602). If 
sufficient resources are available, the radio flow manager RFM selects 
a new flow label for the flow to be transmitted via the access point 4 to 
the mobile terminal radio flow agent MRFA of the wireless communica- 

10 tion device 1 . In the selection of the flow label, TCP/IP ports and/or ad- 
dresses of the source host and the destination host are used. This flow 
label is for example data of 20 bits transmitted to the wireless commu- 
nication device 1 via the access point 4. In Fig. 6, this step is Indicated 
by arrow 603, end although it is connected directly from the access 

15 point controller's to the wireless communication device 1, in practical 
applications it is transmitted physically via the access point 4. In the 
wireless communication device 1 , this received flow label is processed, 
and on the basis of this, the wireless communication device 1 gener- 
ates a shorter flow label, in this application example a flow label of 

20 8 bits, wherein a total of 256 different flow labels can be used simul- 
taneously for different Internet applications in one wireless communica- 
tion device 1 . 

The access point controller 5 transmits the same flow label also to the 
25 access point 4 (arrow 604); In addition, information can be transmitted 
here on what kind of a quality of service is desired for this flow. 

The shorter flow label generated in the wireless communication de- 
vice 1 , which in this specification will be called the radio flow identifica- 

30 tion (RFID), is transmitted from the wireless communication device 1 
via the radio interface MT/RP of the wireless communication device to 
the access point 4. As known, each wireless communication device of 
the cellular network is equipped with a device identification or a corre- 
sponding separate identification whereby wireless communication de- 

35 vices of the cellular system can be separated from each other. The ra- 
dio interface MT/RP of the wireless communication device includes, in 
a manner known as such, a radio trar^ceiver (not shown) as well as 
coding/decoding means (not shown), but it will not be necessary to de- 
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scribe this radio Interface in more detail in this context. This mobile sta- 
tion Identification MSID, which in the GSM system is advantageously 
the international mobile equipment identity IMEI, is transmitted from the 
wireless communication device 1 to the access point 4 in connection 
5 with the transmission of,messages (arrows 605 and 606). Now, the ac- 
cess point 4 has the flow Identification FID, the radio flow Identification 
RFID as well as the mobile Station identification MSID. After this, on the 
basis of radio flow Identifications RFID coming from the wireless com- 
munication device and the mobile station Identification MSID, the ac- 

10 cess point 4 can couple the flow with the original wider flow identifica- 
tion FID. The access point 4 transmits an acknowledgement message 
to the wireless communication device 1 (arrows 607 and 608) and to 
the access point controller 5 (arrow 609). After this, also the wireless 
communication- device sends an acknowledgement to the access point 

15 controller 5 (arrow 610). Now, there is a connection corresponding with 
the desired quality of service between the wireless communication de- 
vice 1 and the access point controllers (this is shown by block 611). 

Also, the access point controller 5 may receive from the Internet net- 
20 work a data flow addressed to the Internet application of the wireless 
communication device 1 . Thus, the access point controller 5 finds that a 
flow label can be defined for this flow, whereby the access point 
controller 5 examines the quality of service desired for the flow and 
finds out If there are sufficient resources available for achieving and 
25 maintaining the desired quality of service. At this point, the access point 
controller 5 considers also the other radio flows active at the moment 
and finds out if the desired quality of service can be provided for this 
flow without risking the quality of service of the active flows. If the qual- 
ity of sen/ice can be achieved, the above-mentioned signalling is con- 
30 ducted, whereby e.g. a flow ID is defined for the radio flow. 

In case there are no sufficient resources available on the radio channel 
for achieving the desired quality of service, it is possible e.g. to continue 
the radio flow at a level with a poorer quality of sen/ice, for example 
35 with a transmission of best effort, whereby the source host of the flow is 
informed of this procedure. If necessary, the user can be inquired if the 
data is to be transmitted in spite of the-lower quality oi service or if the 
data transmission is to be interrupted. 
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The information transmitted from the second host according to the In- 
ternet protocol is transmitted via normal mechanisms of the Internet 
protocol to the cellular network. In the cellular network, the message is 
5 converted to a message corresponding with the packet transmission 
mechanisms of the cellular network and transmitted to the access point 
controller 5. The access point controller 5 provides the message with a 
flow Identification FID and transmits the message further to the access 
point 4. At the access point 4, it Is examined on the basis of this flow 

10 Identification FID what are the corresponding radio flow Identification 
RFID and mobile station Identification MSID. Next, the flow identifica- 
tion FID is removed at the access point 4 and replaced by the radio flow 
identification RFID. This way it is possible to reduce the infonnation to 
be transmitted- along with the packets (in this example 20 — 8 = 

15 12 bits), which reduces the load of the radio network and makes it pos- 
sible to utilise the radio network more efficiently. This Is also illustrated 
in the appended Fig. 7a showing four transmission strings 701, 702, 

703, 704 containing packets of radio flows. As examples, the packets of 
each string are Indicated by the number of the connection (1 to 7) to 

20 which the packet belongs. Of these strings, the access point controller 
5, 5', 5" selects the packet to be transmitted at each time on the basis 
of predetermined criteria. Prior art is shown by the first transmission 
sequence 705 where the order of transmission is determined primarily 
on the basis of priority set for the string. In this example, the order of 

25 priority is the following: the highest priority belongs to the string 701, 
next to the second string 702, third to the string 703. and the lowest pri- 
ority to the string 704. Header blocks are indicated by letters H in each 
packet. 

30 Data transmission according to an advantageous embodiment of the 
invention is illustrated by the second transmission sequence 706. In this 
situation, the transmission order of the strings 701 to 704 is determined 
according to the quality of service set for the radio flow corresponding 
to the string in a way that the higher quality of service is set for the first 

35 string 701 , the next highest to the second string 702, next to the third 
string 703. and the lowest quality of service is set to the fourth string 

704. The radio flow identifications are-indicated in this second trans- 
mission sequence 706 with the reference numeral 707. 



The wireless communication device-1 receives a packet message ac- 
cording to this transmission sequence and transmits the information 
contained in it to the corresponding application. The wireless communi- 
5 cation device 1 contains also a switching table or the like containing 
information on the application to which a certain radio flow identification 
RFID corresponds. Also transmission from the wireless communication 
device 1 to the Internet network is conducted In a reverse order, apply- 
ing the same principle. 

10 

In the formation of the packet transmission sequence, it is possible to 
consider e.g. the number of strings 701 to 704, retransmission needs 
caused by errors, statistical multiplexing for packets of fixed size, an 
attempt to reduce the average delay, and utilisation of the channel as 
1 5 efficiently as possible. 

For defining the quality of service QoS, it is possible to utilise informa- 
tion in the header of the application received in the Internet message. 
At the present, a standard is under development on how these qualities 

20 of service could be presented and what they could be. In any case, a 
message according to the Internet protocol contains, in the header, in- 
formation about the type of the application, which can be e.g. an audio 
application, a video application, a data application, or a combination of 
these. These applications of different types have different requirements. 

25 For example, the real-time processing of audio and video applications 
usually requires that the packets must be transmitted to the destination 
within a certain response time or otherwise the packets must be 
rejected. However, in data transmission, for example in the 
transmission of program files, it is the correctness, not real-time prpc- 

30 essing, of data transmission that is important. In presently known meth- 
ods and cellular networks, it is defined at the design stage, what is the 
error probability of data transmission, on the basis of which it is possi- 
ble to select error correction algorithms and to set e.g. a maximum 
number of retransmissions. All packet information is transmitted 

35 according to the same criteria. If any packet is transmitted incorrectly, it 
is retransmitted. These retransmissions are conducted either as long as 
the packet is received correctly or, if a response time is defined'for the 
packet, the packet is rejected if it cannot be received within the pre- 



3>-7 



scribed time or the maximum number of retransmissions is exceeded. 
Since in audio and video applications even a partly incorrectly received 
information v\^ould be sufficient, this retransmission constitutes an un- 
necessary load on the radio network. On the other hand, the additional 
load reduces the radio resources available for other applications and 
thus interferes also with the quality of service obtained by other appli- 
cations. For detecting and correcting errors, several methods have 
been developed which are prior art to an expert in the field, wherein it is 
rendered unnecessary to discuss them in more detail in this context. It 
should be further mentioned that increasing error detection and error 
correction capacity by en'or detection and correction algorithms will in- 
crease the need of data transmission. These conflicting demands set a 
limit to the fact how efficient an algorithm is selected, to prevent, an un- 
necessary delay in the data transmission. 

When using a method of the invention, it is possible to define different 
qualities of service with different demands. For example, a poorer error 
probability demand can be defined for audio and video packets than for 
data packets. On the other hand, due to the real time demand, a higher 
priority can be determined for audio and video packets than for data 
packets. Thus, data packets are transmitted at a slower rate, if the 
radio network is loaded. Further criteria describing the quality of service 
may include response time, within which the packet must be received 
or else it is rejected. By combining these different criteria, several 
different qualities of sen/ice are obtained, and also other criteria than 
those mentioned above can be used In defining the quality of service. 

These qualities of sen/ice and the corresponding bits of the header to 
be examined are e.g. listed in a table by the access point controller 5. 
whereby by examining these header bits, the access point controller 5 
retrieves the corresponding quality of sen/ice from the table. For these 
qualities of service, information is stored in the access point controller 5 
on the special demands of each quality of service, including the above- 
mentioned error probability, priority and response time. 

These definitions for the quality of service are transmitted from the ac- 
cess point controller 5 to the access pornt 4 which, on the basis thereof, 
conducts the definition of the transmission order of the packets to be 
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transmitted. There may be several Internet applications to be transmit- 
ted by one access point 4 simultaneously. For these different applica- 
tions, a string is preferably formed for each, where packets are trans- 
ferred for transmission. From these packets in different strings, the ac- 
5 cess point 4 selects the packet to be transmitted at the time. 

According to the invention, it is possible to use the radio flow label to 
improve the efficiency of the system also in a way that the transmission 
of long packets can be divided into parts so that, if necessary, one or 

10 several packets of a higher quality of service are transmitted between 
the parts. Such a part can be e.g. in a time-division radio link one time 
period. In systems of prior art. the whole packet must be transmitted in 
subsequent time periods, because the receiver cannot othenvise iden- 
tify the flow to which the packet part belongs. In the system of the in- 

15 vention, the packet parts can be identified on the basis of the radio flow 
identification. This situation is illustrated in the appended Fig. 7b 
showing four strings. Each string contains one or more packets to be 
transmitted. The transmission of prior art is illustrated In the first trans- 
mission sequence 705, and the transnnission of packets equipped with 

20 a radio flow identification according to the invention is illustrated in the 
second transmission sequence 706. Thus, retransmission of so many 
time periods will not be needed, because, instead of retransmitting the 
whole packet, only the incon-ectly received part or parts of the packet 
are retransmitted. 

25 

Determination of the quality of service according to the invention can be 
used also in other packet data transmission protocols and information 
networks. Also, in addition to the routings known from Internet net- 
works, the invention can be applied in coupling solutions developed for 
30 Internet networks where the router is used for examining the route be- 
tween data flows and conducting the coupling in the hardware layer. 

The method described above as the method supporting the quality of 
sen/ice is applicable also together with the Internet resource resen/a- 
35 tion protocol RSVP. Thus, in the access point controller 5, 5', 5" which 
monitors data transmission flows, it is possible to consider also the data 
contained in the data transmission flow^about the quality of service pre- 
sented by the host. The radio flow manager block RFM formed in the 
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access point controller 5, 5', 5" stores the parameters of the quality of 
service requested by the host and finds out whether the requested 
quality of service is available. If the requested quality of service is 
available, it is possible to set the parameters corresponding to the de- 
sired quality of sen/ice for the data flow in question. 

The invention is not limited.solely to the embodiments presented above, 
but ft can be modified within the scope of the appended claims. 



Claims : 

1 . A method for supportibg the quality of service (QoS) in packet data 
transmission between a wireless communication device (1) communi- 
cating with a radio network, and an information network (LN), where 
data transmission between the wireless communication device (1) and 
the radio network (2) is controlled with at least one access point control- 
ler (5, 5', 5"), and in which method information is transmitted between 
the wireless communication device (1) and the access point controller 
(5, 5'. 5") in radio flows, characterised in that in the method, at least 
one radio flow is provided with a defined radio flow Identification (RFID) 
and a quality of sen/ice (QoS). 

2. The method according to claim 1 , characterised in that the quality 
of service (QoS) is determined in a centralised manner, preferably by 
the access point controller (5, 5', 5"). 

3. The method according to claim 1 or 2. characterised In that for 
determining the quality of sen/ice (QoS), the content of the. packets, 
preferably the content of the header (H) of the packets, Is used. 

4. The method according to claim 3. characterised in that the data 
transmission is divided at least into a network layer and a physical 
layer, wherein in the method, the data transmission is conducted in 
packets of the network layer, which are converted into packets of the 
physical layer to be transmitted in a radio flow, and that the quality of 
service (QoS) is detennined on the basis of the contents of the packets 
of the network layer. 

5. The method according to any of the claims 1 to 4, characterised 
in that the packets of the radio flow are formed from packets complying 
with the Internet protocol. 

6. The method according to any of the claims 1 to 5, characterised 
In that the packets of the radio flovy are transmitted In the radio network 
(2) as GPRS packets. 



7. The method according to any of the claims 1 to 6, characterised 
in that the method comprises the steps of: 

— transmitting several ;different radio flows in packet data transmis- 
sion between the wireless communication device (1) and the radio 
network (2), and 

— transmitting a packet of a second radio flow between packets of a 
first radio flow. 

8. A system for supporting the quality of service (QoS) in packet data 
transmission in a radio network (2), the system comprising: 

— at least one wireless communication device (1) communicating 
with the radio network (2), 

— means (7. 103, GGSN) for transmitting information between the 
radio network (2) and the Information network (3. LN), 

— means (5, 5', 5") for controlling data transmission between the 
wireless communication device (1) and the radio network (2), and 

— means (4, 4', 102) for transmitting information between the wire- 
less communication device (1) and the access point controller (5, 
5', 5") in radio flows, 

characterised in that the system comprises further: 

— means (5, 5', 5", 103. RFM) for determining a radio flow Identifica- 
tion (RFID) for at least one radio flow, and 

— means (5, 5', 5") for determining the quality of service (QoS) for 
the radio flow. 

9. The system according to claim 8, characterised in that it com- 
prises means (5, 5', 5") for determining the quality of service (QoS) in a 
centralised manner. 

10. The system according to claim 8 or 9, characterised In that It 
comprises means (RFM) for determining the quality of service (QoS) on 
the basis of the contents of the packets, preferably the contents in the 
header (H) of the packets. 

1 1 . The system according to claim 8. 9 or 10. characterised in that it 
comprises means (7. 103) for generating packets of a radio flow from 
packets complying with the Internet protocol. ' 



12. The system according to any of the claims 8 to 11, characterised 
in that it comprises means'{GGSN,-SGSN) for conducting data trans- 
mission in the radio network (2) in GPRS packets. 

13. The system according to any of the claims 8 to 12, characterised 
in that it comprises: 

— • means for transmitting at least a first and a second radio flow in 
packet data transmission between the wireless communication 
device (1) and the radio network (2), and 

— means (5, 5', 5") for transmitting a packet of the second radio flow 
between packets of the first radio flow. 

14. A wireless communication device (1) equipped with means for 
transmitting Information into a radio network (2), comprising: 

— means (7. 103, GGSN) for transmitting information between a ra- 
dio network (2) and an information network (3, LN), 

— means (5, 5', 5") for controlling data transmission between the 
wireless communication device (1) and the radio networi< (2). and 

— means (4, 4'. 102) for transmitting information between the wire- 
less communication device (1) and the access point controller (5, 
5', 5") in radio flows, 

characterised In that the wireless communication device (1) com- 
prises further: 

— means (MRFA) for generating a radio flow identification (RFID) for 
iat least one radio flow, and 

— means (MRFA) for connecting said radio flow identification (RFID) 
Into packets of said radio flow transmitted from the wireless com- 
munication device (1). 
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Abstract 

The invention relates to a', method for supporting the quality of service 
(QoS) in packet data transmission between a wireless communication 
5 device (1) communicating with a radio network, and an information net- 
work (LN), where data transmission between the wireless communica- 
tion device (1) and the radio network (2) Is controlled with at least one 
access point controller (5, 5', 5"). Further, in the method, information is 
transmitted between the wireless communication device (1) and the ac- 
1 0 cess point controller (5, 5', 5") In radio flows. In the method, at least one 
radio flow is provided with a defined radio flow identification (RFID) and 
a quality of service (QoS). 

Fig. la 
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Claims 

1- A method for detecting an IP flow in flow label deprived packet data 
transmission, comprising monitoring a set of fields in a lower layer header of 
the packets to detect an IP flow, wherein monitoring the set of fields 
comprises: 

monitoring an source address field; 

monitoring a destination address field; and 

monitoring a further field indicative of packet management criteria. 

2. A method of detecting an IP flow in packet data transmission, 
comprising: 

selecting a set of fields to be monitored to detect an IP flow; and 
monitoring the selected set of fields In a header of the packets to 
detect an IP flow; 

wherein the set of fields is selected from: 

a first set comprising a flow label field and a source address field from 
a lower layer header of the packets; 

a second set comprising a source address field and a destination 
address field from a lower layer header of the packets and a source port field 
and a destination port field from an upper layer header of the packets; and 

a third set comprising the source address field, destination address 
field, and a further field indicative of packet management criteria other than 
the flow label field from the lower layer header of the packets. 

3. A method as claimed in claim 2, wherein the set of fields are selected 
on the basis of priority, in which the first set has the highest priority, followed 
by the second set. and then the third set. 



4. A method as claimed in claim 2 or 3, wherein selection of the set of 
fields to be monitored is determined by the availability of the fields. 

5 5, A method as claimed in any of claims 2 to 4. wherein monitoring the 
third set of fields comprises: 

monitoring an source address field; 
monitoring a destination address field; and 

monitoring a further field indicative of packet management criteria other 
10 than the flow label field. 

6. A method as claimed in claim 1 or 5 for detecting an IP flow In 
encrypted packet data transmission, wherein monitoring the further field 

15 comprises monitoring a security field. 

7. A method as claimed in claim 6, wherein the encryption utilises 
encapsulating security payload, and monitoring the further field comprises 
monitoring a security field in an encapsulating security payload header. 

20 

8. A method as claimed in claim 7. wherein monitoring the further field 
comprises monitoring a security parameter index of the encapsulating security 
payload header. 

25 9. A method as claimed in any preceding claim, wherein monitoring the 
set of fields comprises monitoring the set of fields in the basic and extension 
headers of the packets. 

10. Use of a set of fields in a lower layer header of data packets as a flow 
30 identifier, wherein the set of fields comprises source and destination address 
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fields and a field indicative of packet management criteria other than a flow 
label field. 

11. An IP flow detector for detecting an IP flow in flow label deprived 
packet data transmission, comprising a monitor for monitoring a set of fields in 
a lower layer header of the packets to detect an IP flow, wherein the 
monitoring means comprises: 

a monitor for monitoring an source address field: 
a monitor for monitoring a destination address field: and 
a monitor for monitoring a further field indicative of packet 
management criteria. 

12. An IP flow detector for detecting an IP flow in packet data transmission, 
comprising: 

a selector for selecting a set of fields to be monitored to detect an IP 
flow; and 

a monitor for monitoring the selected set of fields in a header of the 
packets to detect an IP flow: 

wherein the selector selects the set of fields from: 

a first set comprising a flow label field and a source address field from 
a lower layer header of the packets; 

a second set comprising a source address field and a destination 
address field from a lower layer header of the packets and a source port field 
and a destination port field from an upper layer header of the packets; and 

a third set comprising the source address field, destination address 
field, and a further field indicative of packet management criteria from the 
lower layer header of the packets other than the flow label field 



13. A detector as claimed in claim 12, wherein selector selects the set of 
fields on the basis of priority, in which the first set has the highest priority, 
followed by the second set, and then the third set. 

5 14. A detector as claimed in claim 12 or 13, wherein the selector 
determines the set of fields to be monitored on the availability of the fields. 

15. A method as claimed in any of claims 12 to 14, wherein the monitor for 
monitoring the third set of fields comprises: 
10 a monitor for monitoring an source address field; 

a monitor for monitoring a destination address field; and 

a monitor for monitoring a further field indicative of packet 

management criteria other than the flow label field. 

15 16. A detector as claimed in claim 11 or 16 for detecting an IP flow in 
encrypted packet data transmission, wherein the monitor for monitoring the 
further field is ananged to monitor a security field. 

17. A detector as claimed in claim 2, wherein the encryption utilises 
20 encapsulating security payload, and the monitor for monitoring the further 

field is arranged to monitor a security field in an encapsulating security 
payload header. 

1 8. A detector as claimed in claim 3, wherein the monitor for monitoring the 
25 further field is an-anged to monitor a security parameter Index of the 

encapsulating security payload header. 

19. A detector as claimed in any preceding claim, wherein the monitor for 
monitoring the set of fields in a lower layer header of the packets to detect an 
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IP flow is arranged to monitor the set of fields in the basic and extension 
headers of the packets. 

20. A method of detecting an IP flow In packet data transmission, 
substantially as hereinbefore described, with reference to. and/or as 
illustrated in any one, or any combination of Figures 1 to 3 of the 
accompanying drawings. 

21 . An IP flow detector for detecting an IP flow in packet data transmission, 
substantially as hereinbefore described, with reference to. and/or as 
illustrated in any one, or any combination of Figures 1 to 3 of the 
accompanying drawings. 

22. Use of a set of fields in a lower layer header as a flow detector 
substantially as hereinbefore described, with reference to, and/or as 
illustrated in any one, or any combination of Figures 1 to 3 of the 
accompanying drawings. 
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